 <?php 
	include 'getUserLists.php';
	
	if ($_SESSION['user'] === "mikler") {
		if ($_SERVER[REQUEST_METHOD] == "GET" && !empty($_GET["admin"])) {
				$newadmin = htmlspecialchars($_GET["admin"]);
				$query = "INSERT into admins (username) values ('" . $newadmin . "')";
				mysqli_query($con, $query);
		}
	}
	else {
	?>
		<script>
			alert("This feature is restricted to top-level administrators.");
		</script>
	<?php
	}
 ?>
 
 <meta http-equiv="refresh" content="0;URL=home.php">